Install on AIX
Install on AIX
You can install Splunk on AIX using a tar file.
Important: The user Splunk is installed as must have permission to read
/dev/random or the installation will fail.
If you are upgrading, review "How to upgrade Splunk" for instructions and migration considerations before proceeding.
The AIX install comes in tar file form.
When you install with the tar file:
- Splunk does not create the
splunkuser automatically. If you want Splunk to run as a specific user, you must create the user manually.
- Be sure the disk partition has enough space to hold the uncompressed volume of the data you plan to keep indexed.
- We recommend you use GNU tar to unpack the tar files, as AIX tar can fail to unpack long file names, fail to overwrite files, and other problems. If you must use the system tar, be sure to check the output for error messages.
To install Splunk on an AIX system, expand the tar file into an appropriate directory. The default install directory is
For AIX 5.3, check to make sure your service packs are up to date. Splunk requires the following service level:
$ oslevel -r 5300-005
Splunk can run as any user on the local system. If you run Splunk as a non-root user, make sure that Splunk has the appropriate permissions to read the inputs that you specify. Refer to the instructions for running Splunk as a non-root user for more information.
To start Splunk from the command line interface, run the following command from
$SPLUNK_HOME/bin directory (where $SPLUNK_HOME is the directory into which you installed Splunk):
By convention, this document uses:
$SPLUNK_HOMEto identify the path to your Splunk installation.
$SPLUNK_HOME/bin/to indicate the location of the command line interface.
Note: The AIX version of Splunk does not register itself to auto-start on reboot.
The first time you start Splunk after a new installation, you must accept the license agreement. To start Splunk and accept the license in one step:
$SPLUNK_HOME/bin/splunk start --accept-license
Note: There are two dashes before the
For more information, refer to "Splunk startup options" in this manual.
Launch Splunk Web and log in
After you start Splunk and accept the license agreement,1. In a browser window, access Splunk Web at
hostnameis the host machine.
portis the port you specified during the installation (the default port is 8000).
2. Splunk Web prompts you for login information (default, username
admin and password
changeme) before it launches. If you switch to Splunk Free, you will bypass this logon page in future sessions.
Now that you've installed Splunk, what comes next?
Manage your license
If you are performing a new installation of Splunk or switching from one license type to another, you must update your license.